Java tips: how to fix the “InvalidKeyException: Illegal key size or default parameters” runtime…
How to remove the key size restriction in Java JDK?
Caused by: java.security.InvalidKeyException: Illegal key size or default parameters
There is nothing wrong that you are doing: JDK has a deliberate key size restriction by default, so you cannot use an encryption with key more than 128 bits.
From Oracle’s documentation:
Due to import control restrictions by the governments of a few countries, the jurisdiction policy files shipped with the JDK 5.0 from Sun Microsystems specify that “strong” but limited cryptography may be used.
Some countries have restrictions on the permitted key strength used in encryption algorithms:
An “unlimited strength” version of these files indicating no restrictions on cryptographic strengths is available for those living in eligible countries (which is most countries). But only the “strong” version can be imported into those countries whose governments mandate restrictions. The JCE framework will enforce the restrictions specified in the installed jurisdiction policy files.
How to remove the key size restriction?
You can remove the maximum key restriction by replacing the existing JCE jars with unlimited strength policy jars.
- For JAVA 7 the download link is jce-7-download
- For JAVA 8 the download link is jce-8-download
Copy local_policy.jar and US_export_policy.jar extracted from above zip file to the $JAVA_HOME/jre/lib/security
Then simply restart you java application and the Exception should be gone.